A SECURE COMPUTER SYSTEM 

The invention relates to secure computer systems 
designed so as to have a level of security that is 
quantifiable (i.e. a level of detecting any operating 
fault that is demonstrable) . A particularly important 
although non-exclusive application of the invention lies 
in installations for running rail track systems 
automatically where it is essential to detect any fault 
that might cause an incident. 

Various techniques are known for making computer 
systems secure. In particular, use is made of redundancy 
which consists in putting in parallel a plurality of 
members having a probability of failing in common that is 
very low and below some predefined threshold. Another 
solution, which can be referred to as "intrinsic" or 
"fail-safe" security, makes use of components and 
subassemblies whose behavior in the event of failure is 
known and is such that any failure gives rise to a secure 
configuration . 

In addition, Matra Transport International has made 
systems in which security is obtained by introducing 
redundancy into the digital information for processing 
such that the probability of a failure passing undetected 
is below a predetermined threshold. 

That solution has been implemented in particular in 
an encoded processor. Each item of information that 
might have an influence on security is encoded and a 
single mode of encoding is adopted over the entire path 
of the information during its acquisition, its 
processing, and its transmission. Where necessary, 
information security can be complemented by encryption. 

The main mode of making a system secure by encoding 
as implemented by Matra Transport International under the 
trademark DIGISAFE is as follows. 

The way in which the principles are implemented can 
depart from the details described below in order to 
accommodate the technology used. 



Each of the characteristics of each input item of 
information that has any incidence on security is 
protected by means of a code. These characteristics can 
in particular be the following: 

- a value and an identity (and possibly a time limit 
on validity) ; or 

- a data item, an address, and possibly an 
appearance sequence. 

Encoding adds redundancy to the information that is 
to be protected. 

When the payload digital information is contained in 
an n-bit field, the encoding consists in adding k 
redundancy bits so as to form a word that is encoded on m 
bits, such that: 

m = n + k 

There are thus 2 n possible words belonging to the 
code and (2 n+k - 2 n ) possible words that do not belong to 
the code . 

The probability of one word belonging to the code 
being taken instead of another (i.e. the probability of 
an error not being detected) is thus: 
p = l/2 k 

The power of the encoding is selected so as to reach 
the required security level. Thus, to obtain a 
probability of 10" 12 , it is necessary for k to be greater 
than 40. 

To ensure that the code is compatible with all 
algorithmic operations, an arithmetic code is selected 
such that any value x is represented by: 
X = A.x 

where A, the key of the code, is a prime number. 

All arithmetic operations thus conserve the property 
whereby X is a multiple of A. Computation errors can be 
detected by loss of divisibility by A. 

Identity must be protected against an addressing 
error which runs the risk of causing a variable Y = A.y 
to be taken instead of X = A.x since both X and Y belong 
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to the code. Arithmetic encoding by multiplication is 
not sufficient to detect such an error. This difficulty 
is avoided by associating each variable x with an integer 
identifier Bx that lies strictly between 0 and A, 
5 excluding the ends of the range, x is then represented 
by: 

X' = A.X + B x 

Timestamp protection is necessary only if a variable 
varies as a function of time. If it is desired to 
10 guarantee that information is up-to-date on each 

computation cycle, as characterized by a timestamp, then 
a timestamp is added to the code of any time -varying 
information. Thus, x is represented by: 

X" = A.x + B x + D 

15 value identity timestamp 

where B x + D < A 
The validity of a result is then checked by integer 
division by A. D is optionally extracted from the 
remainder B x + D and the portion B x is compared with the 
2 0 expected value; since the algorithm is known, the value 
of the remainder can be predicted as from the design 
stage . 

The code can be more extensive when a higher level 
of protection is desired. 

2 5 The above architecture presents some drawbacks and 

limitations. Since it reguires complex manipulations of 
code, it requires dedicated computing equipment and 
optimized architecture, i.e. a system that is closed. 
Nevertheless, it has given very good results in systems 

3 0 that implement processors that are powerful but that also 

have internal security that is a priori genuine. 
However, it lends itself poorly to the use of recent 
microprocessors which include cache memories (or ante- 
memories) for data or memory since the use thereof 
3 5 requires special security analysis that is complex and 

does not guarantee absolute security. In addition, there 
subsist residual scenarios due to the fact of a single 
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microprocessor having present thereon functional 
information and constants or coding operations. As a 
consequence, it is not possible to make use of the full 
power of a microprocessor of that type. 
5 Document GB-A-2 169 114, to which reference can also 

be made, discloses a computer system having a processor 
and a coprocessor and processing input data associated 
with codes; the codes remain associated with the data 
within the processor, thereby complicating the task it 

10 has to perform. 

The invention seeks to depart from the above 
limitations, and for that purpose to take the load of 
security digital processing away from the processor by 
transferring all of the security digital processing to a 

15 peripheral. In addition, the resulting security level is 
thus accurately known. 

Consequently, the invention proposes a computer 
system comprising at least one processor operating under 
the control of a program, which can be permanent or 

2 0 downloaded, working on input data that can be associated 

with a code and supplying output data for transmission or 
application to output members and suitable for being 
associated with a code, 

the system being characterized by at least one 
25 peripheral external to the processor, connected to the 
processor to receive at least the input data codes, the 
operands, and the nature of the operation for each 
elementary operation performed by the processor, the 
peripheral having secure architecture and computing a 

3 0 code for each elementary operation performed by the 

processor and verifying proper operation of all or part 
of the executed program, while the processor performs 
computations only on the functional values of the encoded 
data . 

35 In some cases, the result code is verified on each 

operation. 



The term "operation" is to be understood as meaning 
an arithmetic, mathematical, logical, or control 
operation rather than an elementary instruction. This 
structure puts no constraint on data or program caches in 
the processor, since the processor performs computations 
only on the functional values of encoded data, and not on 
the codes. 

At the end of each operation performed in the 
system, the peripheral receives all of the information 
necessary for verifying whether the resulting code is 
correct and it does this by means of arithmetic 
computations that are simple. In the event of a 
transfer, it suffices to verify that the code has been 
conserved. With an operation that makes use of two 
operands x and y_ having codes Cx and Cy, an algorithm f 
stored in the peripheral enables it to determine the 
correct code Cz for the result. For example, for an 
addition : 

Cz = f (CxX + CyY) 
If k is the number of bits used for representing 
words in the language and is such that 2 k > A, then A.x 
can be written in the following form: 
A.x = 2 k .x - r k (x) 
where r k (x) is the remainder after A has been divided by 
2 k .x, and a value X" can be written as follows: 
X" = 2 k .x + B x + D - r k (x) 
This notation makes it possible to separate the code 
from the non- coded value: 

X" = X k + C x 

where : 

X k = 2 k .x represents the non-coded value of the 
variable; and 

C x represents the coded portion of the variable. 

On the basis of this notation, the processor handles 
only non-coded data or instructions X k . The peripheral 
manages the codes and how they vary with the functions 
applied to coding and known to it. 
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On each instruction, the processor transfers the 
identifier (i.e. the "container", where the functional 
values constitute a "content") of the operands used (e.g. 
the address of the variable which can also be conserved 
in a "mirror memory" of the peripheral) , the operation 
performed, and the value of the result. 

On the basis of this data, the peripheral computes 
variations in the code. 

In outline, the operations can be written in the 
following form: 

Processor Peripheral 



programs and 
data 



identifiers and results 



codes and encoding 
functions 
i 

delivery of data 
representing the code for 
the entire program 

The peripheral can be local or distant. The term 
"system" for securing the computer itself or the computer 
system to which it belongs covers not only members for 
processing information, but also input and output devices 
for information whose content is to be secured. 

The proposed architecture eliminates constraints 
associated with security when selecting a processor (or 
processors) and its real time operating system 
(software) . There is no significant loss in the 
processsor's real time computation power and any 
processing error that is due to any hardware failure or 
any intrusion in the processing will be detected. 

The above characteristics and others will appear 
more clearly on reading the following description of 



particular embodiments, given as non-limiting examples. 
The description refers to the accompanying drawings, in 
which : 

- Figures 1, 2, and 3 are block diagrams showing how 
the invention can be adapted to various systems; and 

- Figure 4 is a diagram showing one possible 
structure for the security peripheral . 

The system shown in Figure 1 comprises a plurality 
of host computers 10a, 10b, 10c, and lOd interconnected 
by a transmission medium 14, each host computer having 
its own security peripheral 12a, 12b, 12c, and 12d. Only 
the peripherals of computers 10c and lOd are equipped to 
perform secure input/output (I/O) . It can be seen that 
the system is completely open. 

In the embodiment of Figure 2, a single peripheral 
12 installed on the computer lOd which constitutes the 
host computer provides security for an entire system 
having four computers (and not only the host computer) . 
This peripheral can provide security either solely for 
the digital processing performed in the computers, or 
else it can also provide security for the input/output 
(I/O) of the host computer. It can also be connected 
directly to the transmission medium. 

The host computer is fitted with a security driver 
which enables it to dialog with the peripheral and the 
other computers shown, themselves being fitted with a 
security peripheral, and capable of being connected by 
any transmission medium (computer bus, serial links, 
radio, Internet, etc.) . 

In the system of Figure 3, the security peripheral 
12 is connected to a conventional computer unit 18 
constituted by a central unit or processor 20 and 
conventional peripherals 22a, 22n. It has one or 

two computation members with intrinsic security (i.e. 
which can be assessed a priori ) which perform 
simultaneously : 

- the security digital processing; and 



- the secure processing of input/output. 

In the event of an external or internal misfunction 
being detected by the peripheral 12, security output 
validation messages are no longer issued, and the system 
5 to which the apparatus belongs is put into a special 

state which is safe and depends on the application. 

In a variant, in the event of an external or 
internal misfunction being detected by the apparatus, the 
peripheral 12 causes only the system to be put into a 
10 special state that is safe, depending on the application. 

It is advantageous for the security peripheral to be 
constituted by an application-specific integrated circuit 
(ASIC) that processes security operations and verifies 
them. By including a dynamic verifying device in the 
15 functions of the security peripheral (allowing secure 
outputs to be activated only in the presence of a code 
that is compliant) , the secure outputs become inhibited 
as soon as an anomaly appears in the security code. 

A security peripheral can also be used in a form 
20 which is generally very simple in order to make exchanges 
between a smart card and one or more computers reliable. 

The security peripheral can be implanted in the card 
itself (as made possible by an ASIC) or it can be 
associated with the computers or with one of the 

2 5 computers involved, in order to guarantee that the 

computations and processing performed by the chip in the 
card and/or by the computers with which it is in 
communication are free from any error due to unwanted 
hardware failure of any member of the system involved or 

3 0 due to deliberate or software intrusion. 

There follows a brief description of an application 
of the invention to equipment for automatically running 
public transport vehicles on a rail track. At least some 
of the equipment must be made secure. Security 
35 requirements can be summarized as follows: 
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Communication 

In the payload portion of secure information in a 
serial message, any error that occurs between the output 
of one secure application and the input of another secure 
5 application must cause the information to be marked "off 
code", i.e. there is a mismatch between the payload 
portion and the redundant portion of the information. 

Input acquisition and issuing "on/off" outputs 
10 On/off defines inputs and outputs that are 

characterized by a 0 state or a 1 state. Such a secure 
input restraining an operation must give rise to an 
encoded input variable being generated to show the 
restrictive state or the off -code state. An output 
15 variable encoded in the restricted state or the off-code 
state must lead to a restricted state of the 
corresponding "on/off" output. 

Securing processing 
2 0 Any error in executing an elementary operation 

leading to an error in the payload portion must give rise 
to an "off-code" state for the output variables concerned 
by this elementary operation. 

2 5 Update check 

Each of the above "security" requirements relates to 
behavior that is purely algorithmic ,- but the behavior is 
not instantaneous: in a transport system, response time 
must be limited in secure manner. For this purpose, the 

3 0 computer can be driven by a secure clock which clocks 

input acquisition, coded computation, and output control. 
For these three elements, security is based on time. 
Serial messages (which cannot be time-stamped) make use 
of a "logical" time at system level, given that the 
35 computers are mutually asynchronous. Taking this into 
account forms part of the way in which messages are 
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decompacted; to ensure that information is indeed recent, 
the following measures can be taken: 

- any drift beyond the threshold of the clock 
driving the computer should cause the system to be put 

5 into a secure configuration; 

- any inter-computer message that is judged to be 
too old given its logic time is ignored, with this check 
being performed by the security peripheral . 

All of these operations can be performed by the 
10 security peripheral 12 in the system shown in Figure 2, 
which is a block diagram of the portion on board a 
vehicle in equipment that is run automatically. 

The system shown in Figure 4 comprises a computer 18 
incorporating a fast microprocessor 2 0 that has a cache 
15 memory and that uses a standard personal computer PCI bus 
24. The security peripheral 12 which is generally an 
ASIC enables full use to be made of the capacities of a 
fast microprocessor. 

A buffer register 26 is provided so that the 
20 security peripheral 12 can execute elementary operations 
in accordance with its capabilities in order to take full 
advantage of the capacities of the microprocessor. 

In order to avoid the register 26 permanently 
playing back a full cycle or part of a cycle that it has 
25 stored, means (not shown) can be provided to put the 
system in a secure state if this event is detectable, 
e.g. by checking timestamps. 

The microprocessor 20 constitutes the central unit 
which provides all of the functions of the system. It is 
30 provided with a serial interface 28 enabling the system 
to be connected to other computers . 

The system also has a dynamic controller constituted 
by a digital portion 3 0 connected to the bus 24 and an 
analog portion 32. The portion 34 is interfaced with the 
35 central unit 20 and with the analog portion 32 which 
performs various functions: 
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- it supplies the power necessary for feeding secure 
outputs from sequences generated by the digital portion 

3 0; 

- it can switch off the power safely in the event of 
incorrect sequences being delivered by the portion 30; 

- it can check the frequency of input sequences, 
i.e. the extent to which information is up to date. 

The inputs I and the outputs S of the systems are 
connected to the analog portion 30. These inputs and 
outputs include some that are purely functional and not 
made secure. Figure 4 shows interfaces 34 and 36 with 
functional inputs and outputs chained to a first input of 
the digital portion 3 0 which is generally constituted by 
a card that is distinct from another card constituting 
the analog portion 32. The interfaces 38 and 40 with the 
secure inputs and outputs are likewise grouped together 
in chains, optionally having a link to the bus 24 to 
transfer information making it possible to verify the 
validity of the codes introduced via these interfaces. 

The system also has links with members which supply 
information used by the digital portion of the dynamic 
controller . 

The members shown include a displacement sensor 42 
which is connected via a matching interface 44 connected 
to the PCI bus 24. The interface generates feed signals 
for the sensor and transfers the information it receives 
from the sensor. These members also comprise a 
communications subassembly with beacons distributed along 
the track. The subassembly has an antenna 46 for 
communication with the beacons, an analog module 48 for 
powering them remotely (if the beacons are passive) and 
for reception and demodulation, and a control and time- 
stamping interface 50. 

Instead of being designed to perform elementary 
operations in succession, the security peripheral can be 
adapted to operating in pipe-line mode, with a time 
multiplexing structure. It can also have parallel 



12 



structures enabling a plurality of elementary operations 
to be performed simultaneously. 



